Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
724
Views
0
Helpful
8
Replies

Configure SNMP in firepower 1xxx series with FDM

Go to solution
a118123
Level 1
Level 1

‎11-20-2023 02:45 AM

I am trying to configure SNMP in firepower 1xxx series (1010) with FDM.

Firmware is 7.3.1

According to this similar guide, I enter some command.

https://www.cisco.com/c/zh_tw/support/docs/ip/simple-network-management-protocol-snmp/213971-configure-snmp-on-firepower-ngfw-applian.html

ksec-fpr9k-1-A# scope monitoring
ksec-fpr9k-1-A /monitoring # enable snmp
ksec-fpr9k-1-A /monitoring* # set snmp community
Enter a snmp community:
ksec-fpr9k-1-A /monitoring* # enter snmp-trap 192.168.10.100
ksec-fpr9k-1-A /monitoring/snmp-trap* # set community
Community:
ksec-fpr9k-1-A /monitoring/snmp-trap* # set version v2c
ksec-fpr9k-1-A /monitoring/snmp-trap* # set notificationtype traps
ksec-fpr9k-1-A /monitoring/snmp-trap* # set port 162
ksec-fpr9k-1-A /monitoring/snmp-trap* # exit
ksec-fpr9k-1-A /monitoring* # commit-buffer

When I type commit-buffer, it does not let me save, what's going wrong?

 

 

 

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-20-2023 07:16 AM

SNMP configuration is not possible using FDM GUI in version 6.7 through at least 7.4.1. You must instead use the API.

You can try using the API explorer (accessible via the FDM GUI from the 3 dots in the top right) or use the python script made available in this thread:

https://community.cisco.com/t5/security-knowledge-base/cisco-secure-firewall-device-manager-snmp-configuration-using/tac-p/4931861

View solution in original post

0 Helpful
8 Replies 8

Go to solution
MHM Cisco World
VIP
VIP

‎11-20-2023 02:49 AM

Snmp must config via fdm or fmc not via cli. 

The only 4000 and 9000 can config via cli. 

Check guide it talk about 4000 and 9000 not 1000.

0 Helpful

Go to solution
Rob Ingram
VIP
VIP

‎11-20-2023 02:54 AM

@a118123 you have to configure SNMP using Flexconfig when using FDM, even on the latest version 7.3. Here is a guide - https://community.cisco.com/t5/security-knowledge-base/how-to-enable-snmp-on-firepower-using-fdm/ta-p/4048084

 

0 Helpful

Go to solution
a118123
Level 1
Level 1

‎11-20-2023 06:18 AM

Invalid.PNG

Thanks for shared guide. But anyone know what is this error mean?

 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to a118123

‎11-20-2023 06:32 AM

You need to specify ver.  of snmp in host command.

Please do double check the guide I and @Rob Ingram  share.

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-20-2023 07:16 AM

SNMP configuration is not possible using FDM GUI in version 6.7 through at least 7.4.1. You must instead use the API.

You can try using the API explorer (accessible via the FDM GUI from the 3 dots in the top right) or use the python script made available in this thread:

https://community.cisco.com/t5/security-knowledge-base/cisco-secure-firewall-device-manager-snmp-configuration-using/tac-p/4931861

0 Helpful

Go to solution
a118123
Level 1
Level 1
In response to Marvin Rhoads

‎11-22-2023 08:59 PM

Good idea sharing. So I can conclude that

  • scope monitoring
  • Flexobject

are not the way I am looking for, and API explorer (or using python script to call API) is the way I need for configurating SNMP.

Thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card